Graham Cluely is among those reporting: BankBot Android banking malware targets hundreds of apps on Google Play; The trojan’s deobfuscated data reveals its true intentions. “The app appeared legitimate other than the fact that someone had infected it with the trojan probably around 8 April 2017, which was the last time it had received an update. A closer look revealed that as many as 5,000 users had installed the compromised app onto their devices.” IT security experts from NuData Security and VASCO Data Security commented below.
Robert Capps, VP of Business Development at NuData Security:
“Consumers have been repeatedly told that only reputable online stores should be used to download apps. Yet, this discovery throws that advice into question and leaves the consumer with few options beyond combing reviews, or to download the app directly from the bank’s site where possible. Banking apps are now a fact of life. In 2016, the Federal Reserve reported that banking apps had stable market penetration at around 43 percent of the mobile phone market. Many mobile phone users not using their phones for banking reported security concerns as part of their reluctance, and Trojans like this being found within apps on a major app store only support their concern.
“One of the best protections banks can offer customers is robust account protection that includes a suite of layered authentication technologies that go beyond just username and password credentials. These new solutions authenticate users based on their online behaviors; methods that are extremely resistant to impersonation, don’t rely on credential data, and can even provide banks with options to upgrade user experiences for trusted good customers. These technologies are going to defeat Trojans and malware by making the credentials and payment card details the fraudsters go after obsolete. I’d love to get to the point that fraudsters are holding a bag full of nothing, because that is where these new technologies are taking us.”
Frederik Mennes, Manager, Security Competence Center at VASCO Data Security:
“While mobile banking malware on Android has historically mainly targeted Russian banks and wallet providers, there are now malware families focusing on European and American banks. These malware families aim to steal credentials or credit card details using overlay windows or SMS interception. The rise of mobile banking malware in Europe and the US shows the need for banks to protect their apps using RASP and their users with more advanced forms of authentication.”
ISBuzz Team embodies the collaborative efforts of the dedicated staff at Information Security Buzz, converging a wide range of skills and viewpoints to present a unified, engaging voice in the information security realm. This entity isn't tied to a single individual; instead, it's a dynamic embodiment of a team diligently working behind the scenes to keep you updated and secure. When you read a post from ISBuzz Team, you're receiving the most relevant and actionable insights, curated and crafted by professionals tuned in to the pulse of the cybersecurity world. ISBuzz Team - your reliable compass in the fast-evolving landscape of information security
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional
Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.